Leave a comment

Apple lashes back at iPad and iPhone security flaw

Apple lashes back at iPad and iPhone security flaw
Twin Design / Shutterstock.com

I told you earlier this week about the massive flaw in iPad and iPhone security, and now Apple is taking the stage to defend itself.

A quick recap on how the Masque Attack works. Once an app is installed on your iOS gadget, your phone treats any app with the same name and digital signature as if it were the same app. Normally, your phone would confirm that something called a "certificate" proved that an update to an app was created by the same developer as the app that it's replacing.

The security researchers call attacks exploiting this vulnerability a Masque Attack because all iOS gadgets are vulnerable to malware-infected apps "masking" themselves as something that they're not.

After you give the developer a free pass by saying that you trust the app, they can use the malware they've just installed to hijack your phone and spam others or steal your information. But Apple has another side to the story.

Next page: What does Apple have to say about all this?
Senate will look at bill to limit NSA spying
Previous Happening Now

Senate will look at bill to limit NSA spying

Here's the only smartphone left standing after a hacking competition
Next Happening Now

Here's the only smartphone left standing after a hacking competition

View Comments ()